clawsec

gnezim/clawsec

Fork 0

mirror of https://github.com/prompt-security/clawsec.git synced 2026-06-14 22:11:22 +03:00

Commit Graph

Select branches

Hide Pull Requests

auto-claude/004-llm-based-security-analyst-skill

auto-claude/009-add-audit-warning-when-clawsec-verify-checksum-man

claude/nifty-brown-bp80vr

claude/practical-dirac-ji4tem

codex/readme-all-skills

dependabot/github_actions/actions/checkout-6.0.3

dependabot/github_actions/github/codeql-action-4.36.2

dependabot/npm_and_yarn/eslint-plugin-react-hooks-7.1.1

dependabot/npm_and_yarn/fast-check-4.8.0

dependabot/npm_and_yarn/typescript-6.0.3

dependabot/npm_and_yarn/typescript-eslint/parser-8.59.4

fix/pin-clawhub-cli

main

skill/hermes-attestation-guardian-hardening-v0.0.1

traffic-archive

#1

#10

#100

#101

#102

#102

#103

#104

#105

#106

#107

#108

#109

#11

#110

#111

#112

#113

#114

#115

#116

#117

#118

#119

#12

#120

#121

#122

#123

#124

#125

#126

#127

#128

#129

#13

#130

#131

#132

#133

#134

#135

#136

#137

#138

#14

#140

#141

#142

#143

#144

#145

#146

#147

#148

#149

#15

#150

#151

#152

#153

#154

#155

#157

#158

#159

#16

#160

#161

#162

#163

#164

#166

#167

#169

#17

#170

#171

#172

#173

#174

#175

#176

#177

#178

#179

#18

#180

#181

#182

#183

#184

#185

#186

#187

#188

#189

#190

#191

#192

#193

#194

#195

#196

#197

#198

#199

#2

#20

#200

#201

#202

#203

#204

#205

#207

#208

#209

#21

#210

#211

#212

#213

#214

#215

#216

#217

#218

#219

#22

#220

#221

#222

#222

#223

#224

#224

#225

#226

#227

#228

#229

#23

#230

#231

#232

#233

#235

#236

#236

#237

#238

#239

#239

#240

#241

#242

#244

#245

#246

#247

#248

#250

#251

#252

#253

#254

#254

#255

#256

#257

#258

#259

#259

#26

#260

#261

#262

#263

#264

#265

#266

#266

#267

#268

#268

#27

#270

#271

#28

#29

#3

#30

#31

#32

#33

#34

#35

#36

#37

#38

#39

#4

#40

#41

#42

#43

#44

#45

#46

#47

#48

#49

#5

#50

#51

#52

#53

#54

#55

#56

#57

#58

#59

#6

#60

#61

#62

#63

#64

#65

#66

#67

#68

#69

#7

#70

#71

#72

#73

#75

#76

#77

#78

#79

#8

#80

#81

#82

#83

#84

#85

#86

#87

#88

#89

#9

#90

#91

#92

#93

#94

#95

#96

#97

#98

#99

claw-release-v0.0.3

clawsec-clawhub-checker-v0.0.1

clawsec-clawhub-checker-v0.0.2

clawsec-clawhub-checker-v0.0.3

clawsec-clawhub-checker-v0.0.4

clawsec-clawhub-checker-v0.0.5

clawsec-clawhub-checker-v0.0.6

clawsec-feed-v0.0.1

clawsec-feed-v0.0.2

clawsec-feed-v0.0.3

clawsec-feed-v0.0.4

clawsec-feed-v0.0.5

clawsec-feed-v0.0.6

clawsec-feed-v0.0.7

clawsec-feed-v0.0.8

clawsec-feed-v0.0.9

clawsec-nanoclaw-v0.0.1

clawsec-nanoclaw-v0.0.2

clawsec-nanoclaw-v0.0.3

clawsec-nanoclaw-v0.0.4

clawsec-nanoclaw-v0.0.5

clawsec-nanoclaw-v0.0.6

clawsec-nanoclaw-v0.0.7

clawsec-nanoclaw-v0.0.8

clawsec-scanner-v0.0.1

clawsec-scanner-v0.0.2

clawsec-scanner-v0.0.3

clawsec-scanner-v0.0.4

clawsec-scanner-v0.0.5

clawsec-suite-v0.0.1

clawsec-suite-v0.0.10

clawsec-suite-v0.0.2

clawsec-suite-v0.0.3

clawsec-suite-v0.0.4

clawsec-suite-v0.0.5

clawsec-suite-v0.0.6

clawsec-suite-v0.0.8

clawsec-suite-v0.0.9

clawsec-suite-v0.1.1

clawsec-suite-v0.1.10

clawsec-suite-v0.1.2

clawsec-suite-v0.1.3

clawsec-suite-v0.1.4

clawsec-suite-v0.1.5

clawsec-suite-v0.1.6

clawsec-suite-v0.1.7

clawsec-suite-v0.1.8

clawsec-suite-v0.1.9

clawtributor-v0.0.1

clawtributor-v0.0.2

clawtributor-v0.0.3

clawtributor-v0.0.4

clawtributor-v0.0.5

clawtributor-v0.0.6

clawtributor-v0.0.7

hermes-attestation-guardian-v0.0.1

hermes-attestation-guardian-v0.1.0

hermes-attestation-guardian-v0.1.1

hermes-attestation-guardian-v0.1.2

hermes-attestation-guardian-v0.1.3

hermes-attestation-guardian-v0.1.4

hermes-traffic-guardian-v0.0.1-beta1

hermes-traffic-guardian-v0.0.1-beta2

hermes-traffic-guardian-v0.0.1-beta3

nanoclaw-traffic-guardian-v0.0.1-beta1

nanoclaw-traffic-guardian-v0.0.1-beta2

openclaw-audit-watchdog-v0.0.1

openclaw-audit-watchdog-v0.0.3

openclaw-audit-watchdog-v0.0.4

openclaw-audit-watchdog-v0.1.0

openclaw-audit-watchdog-v0.1.1

openclaw-audit-watchdog-v0.1.2

openclaw-audit-watchdog-v0.1.3

openclaw-audit-watchdog-v0.1.4

openclaw-audit-watchdog-v0.1.5

openclaw-audit-watchdog-v0.1.6

openclaw-audit-watchdog-v0.1.7

openclaw-traffic-guardian-v0.0.1-beta1

openclaw-traffic-guardian-v0.0.1-beta2

openclaw-traffic-guardian-v0.0.1-beta3

picoclaw-security-guardian-v0.0.1

picoclaw-security-guardian-v0.0.2

picoclaw-security-guardian-v0.0.3

picoclaw-security-guardian-v0.0.4

picoclaw-self-pen-testing-v0.0.1

picoclaw-self-pen-testing-v0.0.2

picoclaw-self-pen-testing-v0.0.3

picoclaw-traffic-guardian-v0.0.1-beta1

picoclaw-traffic-guardian-v0.0.1-beta2

picoclaw-traffic-guardian-v0.0.1-beta3

soul-guardian-v0.0.2

soul-guardian-v0.0.5

soul-guardian-v0.0.6

soul-guardian-v0.0.7

v0.1.0

45386225eb docs: update README and SKILL documentation to reflect new installer scripts and usage instructions David Abutbul 2026-02-16 21:11:38 +02:00
15309588ee feat: integrate reputation checks into clawhub setup script and enhance installer David Abutbul 2026-02-16 21:09:27 +02:00
6893390ab4 feat: enhance clawsec-clawhub-checker with setup script and reputation checks David Abutbul 2026-02-16 20:56:44 +02:00
765255680c refactor: remove PR_NOTES.md and update documentation in README.md and SKILL.md feat: add input validation for skill slug and version in check_clawhub_reputation.mjs fix: enhance argument parsing in enhanced_guarded_install.mjs test: add reputation check tests for input validation and output formatting chore: delete unused update_suite_catalog.mjs script David Abutbul 2026-02-16 20:32:51 +02:00
269ff94b84 Merge branch 'main' into skill/clawsec-clawhub-checker davida-ps 2026-02-16 18:56:06 +01:00
e6b9e90bac fix: lint errors in clawsec-clawhub-checker David Abutbul 2026-02-16 19:53:53 +02:00
50a2d5fb8c feat: add clawsec-clawhub-checker skill David Abutbul 2026-02-16 19:36:38 +02:00
bfd230a178 chore(deps): bump bandit from 1.7.9 to 1.9.3 in /.github (#32) dependabot[bot] 2026-02-16 19:18:53 +02:00
d5cf5c0b9c chore(deps): bump lucide-react from 0.563.0 to 0.564.0 (#37) dependabot[bot] 2026-02-16 19:16:10 +02:00
74a6d23a20 chore(deps): bump github/codeql-action from 3.29.6 to 4.32.3 (#34) dependabot[bot] 2026-02-16 19:12:58 +02:00
5e2f623ead chore(deps): bump actions/checkout from 4.2.2 to 6.0.2 (#39) dependabot[bot] 2026-02-16 19:10:08 +02:00
b05265fba1 chore(deps): bump ruff from 0.6.9 to 0.15.1 in /.github (#30) dependabot[bot] 2026-02-16 19:03:40 +02:00
176aa1f06a chore(deps): bump ossf/scorecard-action from 2.4.1 to 2.4.3 (#38) dependabot[bot] 2026-02-16 19:00:31 +02:00
63de5ce08d Security Audit Suppression Mechanism (fulfills https://github.com/prompt-security/clawsec/issues/25) (#40) davida-ps 2026-02-16 17:55:06 +01:00
4af71d45c7 Remove suppressed matches tracking from state to prevent re-evaluation alerts openclaw-audit-watchdog-v0.1.0 clawsec-suite-v0.1.2 #40 David Abutbul 2026-02-16 18:49:37 +02:00
20e52e6009 chore(openclaw-audit-watchdog): bump version to 0.1.0 David Abutbul 2026-02-16 18:40:32 +02:00
5050ae8ee3 chore(clawsec-suite): bump version to 0.1.2 David Abutbul 2026-02-16 18:40:28 +02:00
88b778cbd4 Refactor finding comparison logic in render_report.mjs to simplify equality checks David Abutbul 2026-02-16 18:34:12 +02:00
bf98578f97 Update CHANGELOG.md for advisory suppression module and OpenClaw Audit Watchdog enhancements David Abutbul 2026-02-16 17:59:54 +02:00
ad28d616fb Update ESLint configuration and dependencies to pin @eslint/js to version 9.28.0 David Abutbul 2026-02-16 17:53:45 +02:00
a3a1e89907 Fix type assertion for checksums file entries in Checksums component David Abutbul 2026-02-16 17:47:01 +02:00
ac9759e0d7 Enhance suppression mechanism in OpenClaw Audit Watchdog David Abutbul 2026-02-16 17:35:15 +02:00
83a520aaf1 Merge remote-tracking branch 'origin/main' into auto-claude/001-feature-request-allowlist-suppress-mechanism-for-a David Abutbul 2026-02-16 17:30:59 +02:00
d41101a20c chore(deps-dev): bump @eslint/js from 9.39.2 to 10.0.1 (#31) dependabot[bot] 2026-02-16 17:15:50 +02:00
654dc5fbcf chore(deps-dev): bump @typescript-eslint/eslint-plugin (#36) dependabot[bot] 2026-02-16 17:08:42 +02:00
8b599f95dc chore(deps-dev): bump @typescript-eslint/parser from 8.54.0 to 8.55.0 (#29) dependabot[bot] 2026-02-16 17:05:17 +02:00
8e744dfbb1 chore(deps): bump actions/upload-artifact from 4.6.1 to 6.0.0 (#33) dependabot[bot] 2026-02-16 17:03:16 +02:00
c5c812adc8 chore(deps): bump aquasecurity/trivy-action from 0.33.1 to 0.34.0 (#28) dependabot[bot] 2026-02-16 17:01:05 +02:00
edb58b2fea Fix regex in extractSkillName function and simplify error handling in suppression config tests David Abutbul 2026-02-16 16:23:44 +02:00
fe08566ada - Add backslash escaping before quote escaping in oneline() function - Prevents incomplete string escaping vulnerability - Resolves CodeQL alert: https://github.com/prompt-security/clawsec/security/code-scanning/16 David Abutbul 2026-02-16 16:14:57 +02:00
da01c31de1 Merge remote-tracking branch 'origin/main' into auto-claude/001-feature-request-allowlist-suppress-mechanism-for-a David Abutbul 2026-02-16 16:09:41 +02:00
65c40f67d9 Feat/codescan (#27) davida-ps 2026-02-16 15:00:43 +01:00
d99c45352c auto-claude: subtask-5-2 - Update SKILL.md with usage examples David Abutbul 2026-02-16 16:00:18 +02:00
8c7ccc2ea2 auto-claude: subtask-5-1 - Update README.md with suppression feature David Abutbul 2026-02-16 15:58:48 +02:00
73c81edb92 auto-claude: subtask-4-2 - Manual E2E test with real openclaw audit David Abutbul 2026-02-16 15:56:35 +02:00
4519c48fc4 auto-claude: subtask-4-1 - Create integration tests for render_report with suppressions David Abutbul 2026-02-16 15:52:33 +02:00
25b73ef92b auto-claude: subtask-3-1 - Add --config flag to run_audit_and_format.sh David Abutbul 2026-02-16 15:48:17 +02:00
17c0af8d9b auto-claude: subtask-2-2 - Add INFO-SUPPRESSED section to report output David Abutbul 2026-02-16 15:45:35 +02:00
9685db79d3 auto-claude: subtask-2-1 - Add suppression filtering to render_report.mjs David Abutbul 2026-02-16 15:43:41 +02:00
f76cdd22a9 auto-claude: subtask-1-3 - Add unit tests for config loading David Abutbul 2026-02-16 15:40:22 +02:00
e8dc3c331c auto-claude: subtask-1-2 - Create example config file template David Abutbul 2026-02-16 15:38:17 +02:00
ab4581f969 auto-claude: subtask-1-1 - Create config loading utility with multi-path fallback David Abutbul 2026-02-16 15:36:23 +02:00
398bd450ac Add Scorecard supply-chain security workflow (#17) Zvika Ronen 2026-02-16 15:11:38 +02:00
51532bc753 Added dynamic skill-catalog discovery in clawsec-suite (#26) davida-ps 2026-02-16 13:47:32 +01:00
aa563e8c0e chore(clawsec-suite): bump version to 0.1.1 clawsec-suite-v0.1.1 #26 David Abutbul 2026-02-16 14:44:55 +02:00
4f9a9abe17 chore(changelog): update to version 0.1.1 and enhance signing key drift control documentation David Abutbul 2026-02-16 14:44:23 +02:00
5f747ffbe5 chore(clawsec-suite): bump to 0.1.0 and record release changelog davida-ps 2026-02-16 11:35:00 +00:00
1b9625c053 docs(readme): document signing key consistency CI guardrails davida-ps 2026-02-16 11:29:57 +00:00
d6665c241f ci(signing): enforce key consistency across docs, repo, and generated assets davida-ps 2026-02-16 11:11:27 +00:00
5e389cb582 fix(openclaw-audit-watchdog): escape shell env interpolation in setup_cron davida-ps 2026-02-16 09:11:40 +00:00
f0fdf7b983 Revert "feat(clawsec-suite): integrate audit-watchdog and add email-gated setup" davida-ps 2026-02-16 09:09:42 +00:00
d0f1321a45 Revert "fix(clawsec-suite): escape shell env assignments in watchdog setup" davida-ps 2026-02-16 09:08:17 +00:00
f31e404291 Revert "fix(lint): remove unnecessary escapes in watchdog exec template" davida-ps 2026-02-16 09:08:17 +00:00
a2bd598557 fix(lint): use globalThis fetch/AbortController in catalog script davida-ps 2026-02-16 09:00:52 +00:00
d300618a94 clawsec-suite: align signed feed defaults and checksum key compatibility davida-ps 2026-02-16 08:54:35 +00:00
154b89a0d0 clawsec-suite: add dynamic remote skill catalog discovery with fallback davida-ps 2026-02-16 08:52:58 +00:00
21d37e59de fix(lint): remove unnecessary escapes in watchdog exec template davida-ps 2026-02-16 07:50:06 +00:00
bd18f93c4d fix(clawsec-suite): escape shell env assignments in watchdog setup davida-ps 2026-02-15 14:13:18 +00:00
691c03f2b4 feat(clawsec-suite): integrate audit-watchdog and add email-gated setup davida-ps 2026-02-15 12:54:41 +00:00
777ff98d63 feat(skills): add clawsec-clawhub-checker reputation checking skill David Abutbul 2026-02-16 12:43:01 +02:00
76778b8bb6 fix: improve changelog extraction logic to handle additional separators and headings clawsec-suite-v0.0.10 David Abutbul 2026-02-12 20:21:51 +02:00
26fa73fc92 feat: enhance skill release workflow with changelog extraction for versioned releases David Abutbul 2026-02-12 20:18:22 +02:00
8918171c6d ER FIX: enhance skill release workflow with republish functionality and due to flaky clawhub api David Abutbul 2026-02-12 19:55:52 +02:00
705d38f39f feat: add public key files for signing and enhance release script wit… (#23) davida-ps 2026-02-12 18:39:59 +01:00
5ee8587b1e Integration/signing work (#20) davida-ps 2026-02-12 17:49:34 +01:00
331219eec3 Add Contributor Covenant Code of Conduct and Security policy davida-ps 2026-02-11 10:31:18 +01:00
0554a7ffd2 feat: add GitHub icon to header and improve navigation toggle layout (#18) davida-ps 2026-02-09 14:54:42 +01:00
1ff41b6127 Fix/UI phunt (#16) davida-ps 2026-02-09 12:18:30 +01:00
9e4134c63e fix: adjust layout and spacing in AdvisoryCard and FeedSetup components (#15) davida-ps 2026-02-09 11:33:42 +01:00
2974daed6c feat: replace Shield icon with favicon in Header and adjust Home section spacing (#14) davida-ps 2026-02-09 10:29:17 +01:00
6caef15234 chore(clawsec-suite): bump version to 0.0.9 (#13) davida-ps 2026-02-09 07:39:21 +01:00
905561d6f7 chore(clawsec-suite): bump version to 0.0.9 clawsec-suite-v0.0.9 David Abutbul 2026-02-09 08:29:17 +02:00
1429ddd241 fix: improve commit handling and rollback logic in release script (#12) davida-ps 2026-02-09 07:28:29 +01:00
83ec542a1e feat: add clawsec-advisory-guardian hook for advisory monitoring and … (#9) clawsec-suite-v0.0.8 davida-ps 2026-02-08 22:34:27 +01:00
3ffa6eed68 Refactor release asset packaging to preserve directory structure and improve checksum generation (#11) davida-ps 2026-02-08 21:00:16 +01:00
57eeb6d8f3 Fix formatting issues in skill release workflow YAML (#10) davida-ps 2026-02-08 20:17:35 +01:00
4542b7b96b Enhance/skill release (#8) davida-ps 2026-02-08 18:18:21 +01:00
85966ff569 Update installation instructions and remove deprecated SKILL_URL (#7) davida-ps 2026-02-08 13:13:53 +01:00
24db3d46a4 Update README with additional live site link (#6) davida-ps 2026-02-08 12:08:04 +01:00
e08c91b504 Remove advisory for helper-plus prompt injection (#5) davida-ps 2026-02-08 12:02:13 +01:00
57720d5493 Refactor Install Card layout and add mascot image (#4) davida-ps 2026-02-08 11:59:19 +01:00
a706ef9df9 Merge pull request #3 from prompt-security/automated/nvd-cve-update-21793513607 davida-ps 2026-02-08 10:12:48 +01:00
7f741d11da Merge branch 'main' into automated/nvd-cve-update-21793513607 #3 davida-ps 2026-02-08 10:10:39 +01:00
e9db0c48c9 Merge pull request #2 from prompt-security/automated/nvd-cve-update-21775459869 davida-ps 2026-02-08 10:09:12 +01:00
e329a71de6 Merge branch 'main' into automated/nvd-cve-update-21775459869 #2 davida-ps 2026-02-08 10:07:37 +01:00
ad8a751b77 Merge pull request #1 from prompt-security/automated/nvd-cve-update-21728874631 davida-ps 2026-02-08 10:05:56 +01:00
186c2ec165 Merge branch 'main' into automated/nvd-cve-update-21728874631 #1 davida-ps 2026-02-08 10:04:23 +01:00
9ae2efa2f7 chore: CVE advisories - 1 new, 0 updated davida-ps 2026-02-08 06:16:29 +00:00
5ded815e6a chore: CVE advisories - 1 new, 0 updated davida-ps 2026-02-07 06:10:59 +00:00
87f80aae94 chore(soul-guardian): bump version to 0.0.2 soul-guardian-v0.0.2 David Abutbul 2026-02-06 19:32:20 +02:00
c856bb6426 chore(docs): correct installation command for clawsec-suite in index.html and Home.tsx David Abutbul 2026-02-06 02:01:24 +02:00
4783849476 chore(docs): update installation instructions for clawsec-suite in index.html and Home.tsx David Abutbul 2026-02-06 01:57:12 +02:00
4904990500 chore(constants): update SKILL_URL to use the latest download link David Abutbul 2026-02-06 01:18:55 +02:00
c7749e6d5a chore(clawsec-suite): bump version to 0.0.6 clawsec-suite-v0.0.6 David Abutbul 2026-02-06 01:17:24 +02:00
ecf715940d chore(constants, SKILL.md): update SKILL_URL to version 0.0.6 and adjust download script David Abutbul 2026-02-06 01:17:15 +02:00
007a9cc5f4 chore(constants): update SKILL_URL to version 0.0.5 David Abutbul 2026-02-06 00:55:02 +02:00
fae4444526 chore(clawsec-suite): bump version to 0.0.5 clawsec-suite-v0.0.5 David Abutbul 2026-02-06 00:54:09 +02:00
db091fb8b3 chore(clawsec-feed): bump version to 0.0.4 clawsec-feed-v0.0.4 David Abutbul 2026-02-06 00:53:56 +02:00
b950c7d937 chore(clawsec-suite, clawsec-feed): update installation instructions and emphasize script review David Abutbul 2026-02-06 00:53:43 +02:00
96741196e5 chore(constants): update SKILL_URL to version 0.0.4 David Abutbul 2026-02-06 00:40:03 +02:00

1 2 3 4 5 ...